Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/AOWEPPny35Gfm1RRe8HKsF4rPWY.roa
File: AOWEPPny35Gfm1RRe8HKsF4rPWY.roa (raw, json)
Hash identifier: kQ1ZXopwV1GwykMWkLLWLCexfUJM8kMCqv7amMInjlE=
Subject key identifier: 00:E5:84:3C:F9:F2:DF:91:9F:9B:54:51:7B:C1:CA:B0:5E:2B:3D:66
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F17BCFF185F7178284F639729FA8F828A
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/AOWEPPny35Gfm1RRe8HKsF4rPWY.roa
Signing time: Fri 26 Apr 2024 00:10:13 +0000
ROA not before: Fri 26 Apr 2024 00:10:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:17:bc:ff:18:5f:71:78:28:4f:63:97:29:fa:8f:82:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 26 00:10:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00e5843cf9f2df919f9b54517bc1cab05e2b3d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:39:ca:ac:fc:1b:1a:50:8f:7b:4f:64:3d:5d:
28:19:2d:17:38:f5:cf:3c:20:7e:a3:7b:cf:9d:ed:
51:65:85:36:62:2a:f3:a8:1b:0e:7f:81:62:c3:b5:
a5:1c:d5:90:5b:8d:9d:4d:3b:09:c5:77:ab:b9:0b:
45:2f:32:fb:d0:1c:67:03:ac:ff:3b:ea:d6:f4:93:
63:39:7f:9f:bd:cd:e2:a0:5d:12:1b:77:44:17:fd:
e3:6d:d0:29:8b:ed:8a:da:ac:f6:be:30:79:6d:82:
af:0c:e5:3a:4a:95:c7:b6:58:ad:6f:2b:e5:20:2e:
3c:ec:5d:06:a8:ed:37:c3:f8:63:c7:33:84:28:e0:
8b:89:20:90:68:1b:74:14:15:62:a6:ec:39:2f:2f:
cb:1a:6e:02:93:5b:b3:d3:21:e0:f1:84:1a:26:5c:
fb:b6:ba:27:ed:3f:bb:cb:8e:58:f6:92:4f:c1:89:
36:10:6b:c4:a6:3c:90:df:19:4c:69:8d:31:0d:5c:
dc:a2:d5:e8:c0:a8:c6:37:19:55:2b:a2:eb:71:07:
b7:f7:d0:1f:57:63:1c:bf:30:63:c4:dd:27:32:35:
6b:46:36:36:4c:80:4a:1e:70:66:a5:b7:91:7e:d8:
1f:04:53:c4:0f:f5:cf:64:47:6c:c3:6b:a6:6c:ac:
43:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E5:84:3C:F9:F2:DF:91:9F:9B:54:51:7B:C1:CA:B0:5E:2B:3D:66
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/AOWEPPny35Gfm1RRe8HKsF4rPWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
5e:cf:bb:23:63:c7:c6:4f:7a:1c:36:d9:11:8c:8f:c6:97:d1:
b3:49:9f:b3:c8:1b:b7:2a:e5:a2:80:5e:f6:5e:de:6d:a2:f7:
48:ab:12:bf:88:77:d0:5c:6c:2c:f6:e2:0d:69:3d:88:14:9f:
b1:05:5c:97:0e:22:39:46:07:02:60:9f:f5:6f:9e:ea:b1:c8:
3c:f6:8f:b3:79:6a:b3:36:76:30:8d:03:e6:b1:d0:b6:2c:97:
ce:70:9f:82:98:37:1c:4d:31:99:58:61:ff:62:b5:80:f3:3e:
bc:cb:e3:73:3b:96:76:0c:69:71:ef:c3:0c:9f:53:8f:cf:cb:
65:d8:3c:71:d2:e3:40:c7:5f:36:30:11:bc:51:9f:dd:ee:ea:
a4:93:79:3b:35:9e:c4:1f:1a:b7:78:df:fa:5f:d7:ee:7e:da:
4b:4f:e2:b9:42:b5:23:be:57:39:a1:00:54:e2:aa:58:c3:6b:
87:0b:3a:c0:36:55:c3:bf:c5:5e:06:07:81:ab:1d:a7:2f:95:
ab:94:46:84:a2:28:59:55:98:82:d4:2d:9d:aa:d5:ef:66:f4:
13:aa:f3:78:0e:d6:56:5f:ea:0b:f5:f0:2a:c8:5c:72:fc:3e:
6d:ed:8a:4e:67:dc:bb:d9:6b:2d:89:9e:78:11:b1:4a:16:36:
ca:68:6a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org